Configuring a TLS/SSL Version for an Application

You can configure which SSL protocol to use on the internal server for Web applications and Exchange Mail applications. For example, you can configure that a Mobile Mail application always uses TLS 1.0. If you do not configure this, Mobile Access Check Point Software Blade on a Security Gateway that provides a Remote Access VPN access for managed and unmanaged clients. Acronym: MAB. uses the default version that the organizational server recommends.

Configure the feature for each application with Database Tool (GuiDBEdit Tool).

To configure an SSL version for an application:

1. Close all SmartConsole Check Point GUI application used to manage a Check Point environment - configure Security Policies, configure devices, monitor products and events, install updates, and so on. windows connected to the Management Server Check Point Single-Domain Security Management Server or a Multi-Domain Security Management Server..

2. Connect with Database Tool (GuiDBEdit Tool) to the Management Server.

3. Go to Other > network_applications > APPLICATION NAME > internal_resource_ssl_version.

4. Select a version. The options are:

   • auto (default) - Uses the version that the organizational server recommends

   • SSLv3 (SSL 3.0)

   • TLSv1 (TLS 1.0)

   • TLSv1.1 (TLS 1.1)

   • TLSv1.2 (TLS 1.2)

5. Save the changes and close Database Tool (GuiDBEdit Tool).

6. Connect with SmartConsole to the Management Server.

7. Install policy.